Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
1.11.1
Description
Current version of Jackson dependency for AVRO/Java
<jackson-bom.version>2.12.7.20221012</jackson-bom.version>
bringsĀ CVE-2020-36518.
This is covered by next versions, for example - in
<jackson-bom.version>2.13.4</jackson-bom.version>